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Field Of The Invention 



The invention relates generally to the field of systems and methods for intercepting 
communications and more particularly to systems and methods for facilitating packet authentication. 

Background Of The Invention 

Wiretapping, including interception and recording of communications, can be quite useful 
in investigations by governmental agencies such as law enforcement, as well as and private 
investigative agencies. Although originally developed to intercept analog telephonic 
communications, more recently agencies have discovered that wiretapping can also be useful to 
intercept digital message packets ti-ansmitted by a computer or otiier packet source device, or 
received by another computer or other packet destination device, over, for example, a digital data 
network such as the Internet, World Wide Web. 

A problem arises in connection with wiretapping of digital message packets which does not 
arise as readUy in connection with wiretapping of analog communications. With wiretapping of 
analog communications, it is very difficult to tamper with a recording in an undetectable manner. 
That is, if someone tampers witii a recording of analog communications, at least some tampering is 
likely to be detected, which can, m tum, put into question the veracity of all of the recordings 
developed during a wiretap. On the other hand, witii digital data, the data can be easily tampered 
with, and the tampering is difficuh to detect. The message packets can be encrypted using, for 
example, a public encryption key/private decryption key mechanism. In such an arrangement, the 
recording device which performs tiie wiretap can, after receiving a message packet, encrypt the 
message packet using the public encryption key. The private decryption key which can decrypt the 
encrypted message packets is only available to.-for examplcj people who-wiU be making use of the- - 
message packets, as evidence in, for example, a trial in court. If the encrypted message packet is 
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tampered with, the tampering is likely to be relatively easily detectable. It is unlikely that an 
encrypted message packet that has been tampered with would decrypt to a comprehensible message. 
In addition, if, as is common, the message packet originaUy had an error detection code, when a 
tampered-with encrypted message packet is decrypted, it is highly likely that the eiror correction 
code would indicate that the message packet, after decryption, is erroneous. 

While the message packets can be encrypted and decrypted as described above to preserve 
the integrity of message packets recorded during wiretapping, several problems arise. First, 
encryption of a message packet can require relatively significant amount of time. Accordingly, if 
the rate at which message packets are being received becomes relatively high, the encryption 
apparatus can easily become overwhehned. In addition, although the order in which message 
packets are received by the wiretap apparatus can be important, the encryption of the separate 
message packets will not assist in verifying the order in which they are received. A time stamp can 
be applied to each message packet reflecting the time at which the message packet is received, either 
before or after encryption, but the time stamps can be applied in an erroneous manner. 

Summary Of The Invention 

The invention provides a new and improved packet interception system for intercepting 
packets transmitted from, for example, a particular packet source or to a particular packet 
destination, the packet interception system including an arrangement for facihtating authentication 
of intercepted packets. 

In brief summary, the mvention in one aspect provides a packet interception system for 
intercepting message packets transmitted from a packet source or to a packet destination, for 
processing them in such a manner as to facilitate verification of the contents and the sequence with 
which the message packets are intercepted, and for storing the processed message packets for later 
use. The packet interception system generates for each intercepted message packets respective hash 
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1 values, using any convenient hash algorithm, based on the respective intercepted message packet and 

2 the hash value generated for the previously-intercepted message packet, or, for the first intercepted 

3 message packet, a value that is provided to identify the session. 

4 To verify a previously-stored intercepted message packet, the packet interception system, or 

5 another device, using the same hash algorithm, can process the sequence of stored intercepted 

6 message packets up to and includmg the intercepted message packet to be verified, to and compare 

7 the hash value generated to the previously-generated hash value for each of the message packets. 

8 If the sequence of hash values so generated corresponds to the previously-stored sequence, both the 

9 integrity and the sequence of message packets is verified. 

10 hi addition to the hash values, the packet interception system can, for selected ones of the 

1 1 intercepted message packets, generate digital signatures using any convenient encryption algorithm. 

12 In one embodiment, the encryption algorithm is selected to be a. public verification key/private 

13 signature key algorithm. The private signmg key is provided only to the packet interception system 

14 to facilitate digital signing of the intercepted message packets. The public verification key is 

15 provided to the packet verification system or other instrumentality that is to verify and use the 

16 intercepted packets. Since only the public verification key is available to the packet verification 

1 7 system, the digital signature can be verified thereby but not forged. 

1 S Since the packet interception system makes use of a hash algorithm to generate a hash value, 

1 9 instead of an encryption algorithm to generate encrypted message packets or a digital signature for 

20 each message packet, it will readily able to process message packets as they are intercepted in 

2 1 generally real time. 

22 Ina»otheraspect,theinventionprovidesaninterceptsystemmonitorthatmonitorsstatusand 

23 establish predetermined conditions in said packet intercept system 10 over a wireless link. 
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1 Brief Description Of The Drawings 

2 This invention is pointed out with particularity in the appended claims. The above and 

3 further advantages of this invention may be better understood by referring to the following 

4 description taken in conjunction with the accompanying drawings, in which: 

5 FIG. 1 is a functional block diagram of a packet interception system including an 

6 arrangement for facilitating authentication of intercepted message packets, constructed in accordance 

7 with the invention; 

8 FIG. 2 depicts a data structure useful in understanding the operation of the packet 

9 interception system depicted in FIG. 1 in connection with facilitating authentication of intercepted 

10 message packets; and 

1 1 FIG. 3 is a flowchart depictmg operations perfonned by the packet interception system in 

12 connection with generating information to facilitate authentication of intercepted message packets. 

13 Detailed Description OF AN Illustrative Embodiment 

FIG. 1 is a functional block diagram of a packet interception system 10 including an 

1 5 arrangement for facilitating authentication of intercepted message packets constructed in accordance 

1 6 with the invention. With reference to FIG. 1 , the packet interception system 1 0 is used in connection 

17 with interception of message packets transmitted from a packet source 1 1 to one or more packet 

1 8 destinations (one packet destination, identified by reference numeral 1 2 is depicted in FIG. 1 ) over 

19 a communications medium 13. The packet source 1 1 may comprise any mechanism for generating 

20 and transmitting packets over a communications medium, including, for example, a personal 

21 computer, computer workstation or the like. Similarly, the packet destination 12 may comprise any 

22 mechanism for receiving packets and utilizing and/or storing packets, including, for example, a 
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personal computer, computer workstation, a mass information storage subsystem, hardcopy output 
device, or the Uke. The communications medium 13 may comprise any of a number of types of 
media for transferring packets between the packet source 1 1 , including, for example, a public digital 
data network such as the Internet or World Wide Web, a private network, the public switched 
telephone network (PSTN), or any other mechanism by which digital data can be transferred from 
the packet source 1 1. to the packet destination 12. 

The packet interception system 10 operates as a wiretqj mechanism to eavesdrop on the 
message packets transmitted by the packet source 1 1 over communications medium 1 3 and intercept 
and store copies of the message packets. The mechanism by which the packet interception system 
10 intercepts copies of the message packets from the communications medium is well-known and 
will not be described herein. After receiving a message packet, the packet interception system 1 0, 
appends a time stamp that identifies the time at which the packet was intercepted, and m addition 
provides a tag that facilitates authentication of both the information in the packet and the sequence 
with which packets are received to a high degree of reliability. The packet interception system 10 
includes an interface 20, a packet processor 21 and a processed packet store 22. The interface 20 
receives copies of the packets from the communications medium 13 and provides them to the packet 
processor 21 fpr processing. The interface 20 may include any suitable network interface through 
which the packet interception system 1 0 can receive message packets. In addition, the mterface 20 
may also provide connections to other types of equipment, including, for example, personal 
computers, computer workstations or the like over which the packet interception system 10 can 
provide information as described below. The packet processor 21, which may be in the form of a 
conventional microprocessor with suitable programming, appends the time stamp and the tag to the 
message packet to generate a processed packet, and stores the processed packet in the processed 
packet store 22. The stiiicture of processed packets and their organization as stored in the processed 
packet store 22 will be described below in connection with FIG. 2. Operations performed by the 
packet processor 21-in-connection-with generating thejag . appended tojthe processed_packets will 
be described below in connection with FIG. 3. 
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1 After the packet processor 2 1 has stored the processed packets in the processed packet store 

2 22, they (that is, the processed packets) can be retrieved under control of an operator for review or 

3 other use. The time stamp provided by the packet processor 21 identifies the time at which the 

4 packet processor 2 1 processed the packet. Thus, the time stamps appended to successively-received 

5 packets can allow a reviewer reviewing the processed packets to identify the sequence of packets 

6 transmitted by the packet source 11. The tag appended to the packet in each processed packet 

7 facilitates authentication of the contents of the packet, as well as the time stamp. In addition, the 

8 manner in which the tags for successive processed packets are generated are further serves to 

9 authenticate the packet sequence. The processed packets, or any portion tjiereof, can be retrieved 

10 from the processed packet store 22 by the packet processor 21 and provided to the interface 20, 

1 1 which, in turn, can provide them to the operator for use thereby in, for example, examining the 

12 intercepted message packets. 

13 FIG. 2 depicts a data structure representing processed packets as stored in the processed 

14 packet store 22. The processed packet store 22 can comprise any of a number of types of digital data 

1 5 storage devices, including semiconductor memory devices, disk or tape storage arrangements, and 

16 the like, or any combination thereof With reference to FIG. 2, the processed packet store 22 

17 includes a header 30 and a plurality of processed packet entries 31(1) through 31(N) (generally 

1 8 identified by reference numeral 3 1 (n)). The header 30 includes identifying infonnation stored in a 

19 plurality of fields, including an intercept header field 32, a public key field 33 and a private key 

20 signature field 34. The intercept header field 32 includes information such as, for example, the 

21 identification of the packet interception system 10 and an mtercept session identifier. What 

22 constitutes a intercept session can be determined by any convenient measurement standard, 

23 including, for example, a predetermined maximum time period, the time required to fill a storage 

24 devices or the like. The public key field 33 includes the public encryption key which is by the 

25 packet interception system 1 0 in encrypting information as will be described below. The public key 

26 is the public portion of a public encryption key/private decryption key pair, and the private key 

27 signature field 34 contains the signature for the private decryption key portion of the pair. The 
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private key signature in field 34 can be used to identify the private decryption key which can be used 
to decrypt encrypted information in the processed packet store 22. 

Each processed packet entry 31(n) includes three fields, namely, a time stamp field 40(n), 
a packet field 41(n) and a hash code field 42(n). In addition, some of the entries include signature 
fields 43(n). The packet field 41(n) contains the information contained in a packet that was 
intercepted by the packet interception system 10. The time stamp field 40(n) includes the time stamp 
identifying the time at which the packet was intercepted and processed by the packet processor 2 1 . 
The hash field 42(n) in each entry 3 1 (n) contains a hash value, which is generated using any selected 
hash function as the hash of the hash value in the field 42(n-l) of the preceding entry 31(n-l) and 
the information contained in the time stamp field 40(n) and packet field 41(n) of the respective entry 
31(n). For the first entry 31(1), instead of using a hash value in a preceding entry, the hash value 
in hash field 42(1) is genwated as the hash of the information in the header 30 an the information 
contained in the time stamp field 40(1) and packet field 41(1) of the entry 31(1). Since a hash 
function is used for the entries 3 l(n), the packets can be processed much more quickly than if digital 
signatures were generated for the information contained in each of the entries 31(n). In addition, 
depending on the hash function that is selected for use in generating the hash values, the authenticity 
of the information in the time stamp and packet fields 40(n) and 41(n) of an entry 31(n) can be 
ensured to a relatively high degree of reliability. Further, since the hash value generated for each 
entry 3 1 (n) depends on a portion of die information contained in the previous entry 3 1 (n- 1 ), or, in 
the case of the first entry 3 1(1), the header 30, the sequencing of the entries 3 l(l),...,31(n), 3l(n+l), 
3 1(N) can be verified with a relatively high degree of reliability. 

As noted above, some of the entries 31(n), specifically, entries 31(nx), 31(nY),...31(N) are 
provided with respective signature fields 43(nx), 43(nY),...43(N). The signature fields are provided 
for digital signatures, which the packet processor 21 generates for the respective entries using the 
information in the respective entries 31(nx), 31(nY),...31(N) and the public encryption key in field 
33. The digital signatures can be used to provide further verificatiort of the authenticity of the 
infomiation in those respective entries 31(nx), 31(nY),...31(N). Preferably, the number of entries 



3 1 (n) with which digital signatures are used will be a relatively small percentage of the total number 
of entries 31(n) in the processed packet store. Since typically the packet processor 21 will be able 
to generate a hash code for use in fields 42(n), considerably faster would be required to encrypt the 
contents of an entry 3 l(n) or to generate a digital signature therefor, by using a hash code for each 
entry3 l(n) and limiting the number of entries 3 l(n) for which digital signatures are generated, the 
packet interception system 10 will be able to process message packets received on a real-time basis 
even if the rate at which message packets are received is relatively high. 

As noted above, the hash values in fields 42(n) of the entries 31(n) allow authentication of 
the infomiation contained in the time stamp and packet fields 40(n) and 41 (n) of the respective 
entries 3 1 (n), and also authentication of the sequence of entries 3 1 ( 1 ),. .3 1 (n), 3 1 (n+ 1 ),.. .3 1 (N). This 
will be clear from the feet that if the hash algorithm is applied to the successive entries 31(1),... 
31(n), 31(n+l),... 31(N), in the same manner as when the hash values are generated to generate a 
respective second hash values, if each respective second hash value corresponds to the hash value 
in the respective field 42(n), the information in the fields 40(n) and 41 (n) of the entries is authentic, 
and the sequence of entries 31(1),... 31(n), 31(n+l), 31(N) is the correct sequence. 

FIG. 3 is a flowchart depicting operations performed by the packet processor 2 1 in processing 
a packet that it receives from tiie interface 20 for storage in a new entry. With reference to FIG. 3, 
after the packet processor 21 receives a packet fix)m the interface 20 (step 100), it appends a time 
stamp value thereto (step 1 0 1 ). If the packet received in step 1 00 is the first received for the session 
(step 102), the packet processor 21 retrieves the contents of tiie header 30 (step 103). On the otiier 
hand, if the packet received in step 1 00 is not the first received for the session, the packet processor 
2 1 retrieves the contents of the hash field 42(n) for the last entry 3 1 (n) loaded in the processed packet 
store 22 (step 104). Following either step 103 (if the packet received in step 100 is the first packet 
received during the session) or step 104 (if the packet received in step 100 is not the first packet 
received during the session), the packet processor 21 generates a hash value based on the packet 
received in step 100 and the value retiieved in step 1 03 or 104 (step 105) and concatenates the hash " 
value to the time stamp and packet and stores the result in the new entry 31(n+l) (step 106). If the. 



packet processor 21 is to generate a signature value for storage in a signature field 43(n+l) for the 
entry (step 1 07) it generates the signature value using the pubUc key in field 33 of the header 30 (step 
1 08) and loads the signature value in the field 43(n+l). Following step 1 08, or step 1 07 if the packet 
processor is not to generate a signature value for the entry 3 l(n+l), the packet processor 2 1 returns 
to step 1 00 to receive the next packet. 

As noted above, the packet processor 21 can also authenticate both the contents and the 
sequence of one or more of the processed packets which have been stored in the processed packet 
store 22. In that operation, the packet processor performs operations similar to those described 
above in connection with generation of the hash codes for the series of entries 31(1), 3 1(2),... up to 
the respective entry 31(n) whose message packet in field 41(n) is to be verified. If the hash codes 
in the series of entries correspond to die hash codes so generated, then both the contents and the 
sequence of message packets in the series of entries 31(1), 31(2),...31(n) will be verified. 

The invention provides a number of advantages. In particular, the invaition provides a 
mechanism whereby both the contents and sequence of message packets which have been intercepted 
in a wiretapping or eavesdropping operation can be authenticated. Since processing in connection 
with a hash function is typically much faster than processing in connection with a for most a hash 
fimction is used instead of a 

It will be appreciated that numerous modifications may be made to the packet interception 
system 10 described above in connection with FIGS. 1 through 3. Although the packet interception 
system 1 0 has been described in connection with eavesdropping and interception of message packets 
transmitted by a packet source 1 1 to one or more packet destinations, it will be appreciated that the 
packet interception system 10 can also be used in connection with eavesdropping and interception 
of message packets that are transmitted to a single packet destination 12 by more than one packet 
sources. 

Although the packet processor 21 has been described as authenticating the contents and 
sequence of the processed packets which have been stored in the processed packet store 22, it will 
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e appreciated ikdi die aufiientication can be performed by another device (not shown) which 

2 performs operations similar to those described above. If the processed packets are stored on 

3 removable media such as floppy disk or tape devices, the removable media can be removed and used 

4 in connection with a disk or tape drive connected in, for example, a personal computer or computer 

5 workstation. If the processed packets are not stored on removable media, they may be retrieved by 

6 the packet processor21 and provided to the interface 20. The interface 20, in turn, can transfer the 

7 processed packets provided by the packet processor 21 through a connection (not shown) to, for 

8 example, a personal computer or computer workstation for processing as described above. 

9 A further modification will be described in connection with FIG. 1 . With reference to FIG. 

10 1 , the packet intercept system 1 0 is associated with an intercept system monitor 50 for monitoring 

11 the status of the packet intercept system. The mtercept system monitor 50 can monitor 

12 predetermined conditions of the packet intercept system 1 0, including, for example, the amount of 

1 3 memory left for storing intercepted and processed message packets in the processed packet store 22, 

14 the number of intercepted packets, and the like. In addition, the intercept system monitor 50 can 

15 establish and control conditions used by the packet mtercept system 10, including, for example, 

1 6 providing values for the intercept header 32, public key 33 and the private key signature 34. The 

17 intercept system monitor 30 connects with the packet processor 21 over a wireless communication 

1 8 link represented by arrow 51. 

1 9 It will be appreciated that a system in accordance with the invention can be constructed in 

20 whole or in part from special purpose hardware or a general purpose computer system, or any 

21 combination thereof, any portion of which may be controlled by a suitable program. Any program 

22 may in whole or in part comprise part of or be stored on the system in a conventional manner, or it 

23 may in whole or in part be provided in to the system over a networic or other mechanism for 

24 transferring information in a conventional manner. In addition, it will be appreciated that the system 

25 may be operated and/or otherwise controlled by means of information provided by an operator using 

26 operator input elements (not shown) which may be connected directly to the system or which may 
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1 transfer the information to the system over a network or other mechanism for transferring 

2 information in a conventional manner. 

3 The foregoing description has been limited to a specific embodiment of this invention. It will 

4 be apparent, however, that various variations and modifications may be made to the invention, with 

5 the attainment of some or all of the advantages of the invention. It is the object of the appended 

6 claims to cover these and such other variations and modifications as come within the true spirit and 

7 scope of the invention. 

8 What is claimed as new and desired to be secured by Letters Patent of the United States is: 



